Multiple decision profile is one of useful profile in XACML 3.0, when it comes to deal with most of authorization use cases. This profile can be modeled to define authorization for hierarchical resources by use of identifier called “scope” (based on Hierarchical Resource Profile). You can find more details from here. In this blog post, […]
Tag: XACML Sample
XACML Sample for understanding on how XACML works
XACML is the powerful way to build access control systems in your application. Here we are going to talk about how we can build a XACML driven authorization for on-line trading application called “K-Martket” This sample is shipped with Balana XACML implementation which can be found at here. Scenario would be as follows…. 1. K-Market […]
Resource filtering is one of useful and powerful feature that comes with XACML. Basically this would become more popular with XACML 3.0 due to multiple decision profile. With multiple decision profile, PEP can ask authorization for multiple resources for the PDP, Where your PEP can only filter out the permit results. Let try filtering sample […]
In this blog post I am going to create XACML sample (sample XACML policies , PIP and PEP) with some real world use case. Lets assume following use case in a Health care organization There is a health care organization called “Medi” “Medi” keeps medical records of all the patients in a database repository. This repository has […]